Enabling Password protection
November 17, 2023
ID 193095
Unrestricted user access to the application and its settings can reduce the security level of the device. Password protection is a means to limit user access to the application.
To enable password protection:
- Expand the Managed devices node in the Kaspersky Security Center Administration Console tree.
- Select the administration group for which you want to configure application settings.
- Perform one of the following actions in the details pane of the selected administration group:
- To configure application settings for a group of protected devices, select the Policies tab and open the Properties: <Policy name> window.
- To configure the settings of a task or application for an individual protected device, select the Devices tab and go to the settings of a local task or the application settings.
- In the Application settings section select the Security settings subsection.
- In the Password protection group of settings, select the Apply password protection check box.
- Enter a password and confirm it.
It is recommended to select a password that satisfies the following requirements:
- It is at least 8 characters long.
- It does not contain the user account name.
- It does not match the name of the device on which Kaspersky Endpoint Agent is installed.
- It contains characters from at least three of the following groups:
- uppercase characters (A-Z);
- lowercase characters (a-z);
- numbers (0-9);
- special characters (!$#%).
- In the upper right corner of the settings group, change the switch from Policy not enforced to Under policy.
- Click OK.
Password protection is now enabled. If a user attempts to perform a password protected action, the application will prompt the user to enter the password.
The application does not check the strength of the specified password. We recommend that you use third-party tools to verify the strength of the password. The password is considered strong enough if verification results confirm that the password cannot be guessed for at least 6 months.
The application does not prohibit login attempts after many attempts of entering an incorrect password.